opensearch anyone use pattern to search and send all data to alerts by match all messages that don't have INFO (value field)
this works in search and shows data but not able to get it in query alert , send all message fields value
paste below in search, shows all data that don't have INFO NOT message:"?INFO?"
used below in query pattern match “message”: “NOT message:"?INFO?"”
